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REFEEIENCE TO PENDING APPLICATIONS 

[0001 1 This application is a continuation-in-part of (a) U,S. patent application Sen No. 
09/239.425 entitled "A Secure Electronic Mail System" filed on Jan. 28. 1999 and (b) 
Ser. No. 09/255,837 entitled "Method For Infomiation Encoding And Transfer" filed on 
Feb. 23, 1999 which are continuation-in-part applications of co-pending U.S. patent 
application Ser. No. 08/892.982, filed Jul. 15. 1997. and entitled "Combined Remote 
Access and Security System"; which is a continuation-in-part of U.S. patent application 
Ser. No. 08/752.249. filed Nov. 19. 1996. and entitled "Combined Remote Access and 
Security System". 

REFERENCE TO MICROFICHE APPENDIX 

[00021 This application is not referenced in any microfiche appendix. 

TECHNICAL FIELD OF THE INVENTION 

[0003] The invention relates generally to a data processing system, method and article of 
manufacture allowing for the dynamic reconfi guration of an input/output device 
controller. In particular, the present invention relates to a computer-based system, method 
and article of manufacture which supports and facilitates a remote confi guration and 
utilization of an emulated input/output device controller via encrypted data 
communication between a plurality of users and said controller. 

BACKGROUND OF THE INVENTION 

1 . Fi e ld of the Inv e ntion 

Th e pr e s e nt inv e ntion r e lat e s to a syst e m that will provid e r e mot e acc e ss to allow 
s e rvicing of a mainfram e comput e r sit e wliile at th e sam e tim e providing for s e curity and 
integrity of the mainfi-ame computer installation. In particular, the pres e nt inv e ntion is 
dir e ct e d to a s yst e m wh e r e in s e rvic e and maint e nanc e of th e mainframe comput e r sy s t e m 
is controll e d and monitor e d fi'om a r e mot e location and s e rvic e on th e mainfram e 
comput e r syst e m may b e p e rform e d by a r e mot e support p e rson at a furth e r remote 
location. 

2. Prior Art 

Curr e nt mainfi-am e proc e ssing e nvironments use an op e rator consol e to display m e ssag e s 
about th e system. Th e s e m e ssag e s or e monitor e d and any probl e ms ar e not e d. 
Programm e rs and oth e r t e chnicians may th e n b e com e involv e d in solving a probl e m. Th e 
probl e m may b e b e yond th e op e rations staffs ability to handle. 

The mainfram e comput e r syst e m may b e s e rvic e d and monitored fi-om a r e mote location. 
R e mot e support of mainfram e comput e r installations is becoming increasingly important. 
This includ e s both r e mot e monitoring and s e rvice support of mainft'ome comput e r 



s yst e ms. Busin e sG e s hav e b ee n establish e d which are capable of monitoring and 
maintaining a wide vari e ty of mainfram e comput e r installations. 

From time to timo, when problem s are found, it is n e cessary for a technician, fi e ld 
e ngin ee r, or remote support p e rson to hav e access to th e mainfram e comput e r syst e m. A 
t e chnician or field engin ee r can work on th e probl e ms on site at th e mainframe 
installation. With high speed, broad band communications, it is possible for a remoto 
support p e rson or fi e ld e ngineer to diagnose and solve mainframe computer probl e ms 
from a remot e location by conmiunication from a personal computer. Accordingly, the 
r e mot e support p e rson or field e ngin ee r may b e at any location. Th e se t e clinicians ar e 
incr e asingly s pecialized and require wide access to th e mainfi-ame comput e r installation. 

Moreov e r, it is incr e asingly a trend for e mploy ee s, including thos e at mainfram e 
comput e r installations, to w^ork from th e ir hom e s on p e rsonal comput e rs. In diis case, tho 
e mploy ee s* home computers must b e connected to the mainfi-am e computer installations. 

At th e sam e time, th e comput e r maiiifrani e installation must r e tain its s e curity and 
int e giity. hi th e past, whil e limit e d acc e ss and "fir e walls" hav e som e tim e s be e n e mploy e d 
to maintain security, th e fi e ld e ngin e er or remot e support person ne e ds wid e access to the 
mainframe computer to diagnosis and solve the probl e ms. 

Topically, th e dispatch control c e nt e r is located in a s e cure location. This dispatch control 
c e nter may b e at the sam e physical pr e mises as th e mainfram e custom e r sit e or may be at 
a separate location r e mote from the mainframe. Th e r e mot e support person, how e ver, is 
oft e n tim e s at an uns e cured location and may op e rat e from a laptop or oth e r uns e cur e d 
c e ntral proc e ssing unit machin e . Additionally, th e mainfi-am e computer busin e ss has only 
limit e d controls over th e fi e ld engine e r. For e xampl e , a disgnmtl e d r e mot e support person 
or fi e ld e ngin ee r with wid e acc e ss to th e mainfram e comput e r syst e m could caus e 
consid e rabl e probl e ms. 

With both the dispatch control c e nt e r and th e support p e rson at r e mot e locations fi^om tho 
mainfram e comput e r c e nt e r, th e chann e ls of communication ar e important. Whil e secur o 
transmission lin e s ar e possibl e to e stablish, th e s e ar e e xp e nsiv e over long distances. 
Additionally, th e support p e rson may be mobil e . 

Th e dev e lopm e nt of p e rsonal comput e rs, modem s (modulator/d e modulator d e vices) and 
data conn e ctions has allow^ e d th e growth of many typ e s of comput e r networks. Th o 
Int e rn e t, a somewhat public n e twork of networks, has b e com e an incr e asingly useful 
pathway for comput e r communication. There is, how e ver, a conc e rn about th e s e curity 
and in tegri ty of th e Int e rn e t pathways. 

On e solution to s e curity on th e Int e rn e t has boon th e e ncryption of data to b e transmitt e d. 
On e typ e of e ncryption uses a singl e "k e y" which the s e nder and recipient must k ee p 
s e cr e t. Anoth e r typ e of popular encryption us e s "public private k e ys." Th e first is a 
public k e y mad e available to anyon e . Th e s e cond is a "s e cret key" which th e user must 
not allow anyone olse to s oc . The public and privat e k e ys work in tand e m. If th e secret 



k e y is stor e d on a comput e r syst e m, it is, how e v e r, vuln e rabl e . 



Th e sam e s e curity issues and concerns may also e xist on corporate intran e ts and private 
networks. 

Accordingly, th e pr e s e nt inv e ntion is dir e ct e d to an anaiig e ment wh e re a mainframe or 
mainframes ar e secured at a customer sit e and wired to a p e rsonal comput e r with 
softwme for console monitoring. Th e console monitor i s in communication with a se cure 
dispatch control c e nter location. Th e dispatch control cent e r, upon b e ing al e rt e d of a 
probl e m, will contact a support p e rson to diagnos e and solv e th e particular probl e m. A 
data e ncryption k e y is randomly g e nerated and transmitt e d from th e dispatch control 
c e nter to both the support person's central processing unit and to the consol e monitor of 
th e mainfram e . 

It is a further object and purpos e of the pr e s e nt inv e ntion to provide a remote access and 
security system using data encryption keys wherein a data e ncryption key is n e ver 
transmitt e d or s e nt betw^e e n th e r e mot e support person's c e ntral proc e ssing unit and th e 
mainfram e installation. 

SUMM.\RY OF THE INVENTION 

In a combin e d r e mot e acc e ss and s e curity syst e m of th e pr e sent inv e ntion, a singl e 
mainfram e or multipl e mainframes ar e located at a secure location. The mainfram e or 
mainfram e s ar e conn e cted to a console monitor central proc e ssing unit through a coax or 
twdnax conn e ction. 

Th e consol e is used to display status m e ssag e s about th e mainfram e computer syst e m 
including e iTors or critical situations occurring on th e comput e r syst e m. Wh e n specifi e d 
mainfram e system al e rts or probl e ms occur a warning or al e rt will b e issu e d. This al e rt 
will b e communicat e d from the consol e to a dispatch control c e nt e r c e ntral proc e ssing 
unit at a r e mote, s e cure location. 

A dispatch e r will monitor any alaiTn cod e s r e c e ived from th e mainfram e system. Th e 
dispatcher will cr e at e a troubl e tick e t for e ach incoming alarm, assign a fi e ld e ngin ee r to 
the probl e m and call or otherwis e contact th e fi e ld e ngin ee r. 

Th e r e after, th e dispatch e r will initiate through th e dispatch c e ntral proc e ssing unit, a 
uniqu e , randomly g e n e rat e d us e r id e ntification/password pair which is r e f e r e nc e d to th e 
assigned probl e m number. Th e us e r id e ntification/passw^ord pair is a data e ncryption k e y 
randomly gen e rat e d by th e dispatch c e ntral proc e s s ing unit. Th e data e ncryption key is 
g e n e rat e d from a math e matical algoritlxm and will b e a randomly g e n e rat e d binary code. 

Th e identification/passw^ord e ncryption k e y is transmitt e d in two separat e transmissions 
ov e r two se parat e paths. Th e data e ncryption k e y is communicated from th e dispatch e r's 
c e ntral proc e ssing unit to th e fi e ld e ngin ee r's c e ntral proc e ssing unit. Additionally, th o 
dispatch c e ntral proc e ssing unit will also transmit th e data e ncryption k e y back to th e 



consol e c e ntral proc e ssing unit of th e mainfram e . 

Onc e the field e ngin ee r has been notified and has rec e ived th e identification/password 
pair from th e dispatch control c e nt e r, th e fi e ld e ngine e r will log on and communicat e 
with th e consol e c e ntral proc e ssing unit. 

Data communicat e d from the fi e ld engine e r's central proc e ssing unit to th e consol e 
central processing unit is encrypted with th e id e ntification/password k e y. The data is 
subsequently decrypt e d upon r e ceipt at th e consol e monitor c e ntial proc e ssing unit. 
Importantly, th e password/id e ntification pair do e s not trav e l ov e r the [Q004] The present 
invention provides for secured, real-time, configuration and utilization of an emulated 
input/output device controller. The instant invention advances the art by allowing its 
practice to be supported via an encrypted communications protocol interfacing wdth, and 
relying upon, the teachings, practices and claims disclosed in co-pending U.S. patent 
applications Ser. No. 09/239,425 and 09/255,837 (hereinafter synonymously referred to 
as "Secure Agent" or "SA"). 

[0005] Secure Agent Service Overview 

[0006] The following overview is provided to facilitate a comprehensive understanding 
of the teachings of the instant invention. Secure Agent utilizes a secure login sequence 
wherein a client comiects to a Secure Agent server using a key known to both systems 
and a client connects and presents the server with user identification (as used herein the 
term "client" refers synonymously to a remote user establishing, and communicating with 
the instant invention through Secure Agent allocation and encryption processes as taught 
in the above noted applications). If recognized, the Secure Agent server initiates a 
protocol whereby the client's identification is verified and subsequent communication is 
conducted within a secured (encrypted) construct. For purposes of this overview, the term 
"server" should be considered a hardware configuration represented as a central 
processing unit wherein Secure Agent, a Host DLL and driver reside, and are executed. 
The term "DLL" as used herein refers to a Secure Agent host dynamically linked library 
(a.k.a. Host DLL). The term "DLL" or "dynamically linked library" is used in a manner 
consistent with that known to those skilled in the art. Specifically, the term "DLL" refers 
to a library of executable functions or data that can be used by a Windows application. As 
such, the instant invention provides for one or more particular functions and program 
access to such functions by creating a static or dynamic link to the DLL of reference, 
with "static links" remaining constant during program execution and "dynamic links" 
created by the program as needed. 

r0007] The Secure Agent server presents a variable unit of data, such as the time of day, 
to the client as a challenge. The client must then encrypt that data and supply it back to 
the server. If the sei^ver is able to decrypt the data using the stored client's key so that the 
result matches the original unencrypted challenge data, the user is considered 
authenticated and the connection continue. The key is never passed between the two 
systems and is therefore never at risk of exposure. 



[0008] The initial variable unit of data seeds the transmission of subsequent data so that 
the traffic for each chent server session is unique. Further, each byte of data transmitted 
is influenced by the values of previously sent data. Therefore, the connection is secure 
across any communication passageway includinR pubUc networks such as, but not limited 
to, the Internet. The distance between the client and server is not of consequence but is 
typically a remote connection. For accountability purposes, the actions of a client may be 
recorded (logged) to non- volatile storage at almost any detail level desired. 

[0009] The access rights of each client (what the client is able to accomplish during a 
session) is governed by data stored on the Secure Agent server to which the client is 
associated. As an example, such rights might encompass the ability to administer and 
utilize the services of the server system, v^hich would, in turn, include capabilities such as 
adding new cUent users, changing a user*s rights, transfening new code to the server, 
using a feature (or sei-vice) of the server and more. 

[0010] Consequently, Secure Agent allows for the transmission of new code to the server . 
and for that code to be implemented upon demand by a client. Such dynamic, real-time 
implementation in turn, allows for the behavior of the sender to be modified. It is to this 
behavior modification the instant invention addresses its teacliings, and thereby advances 
the contemporary art. 

[0011] As will be readily appreciated by those skilled in the art, thougli the instant 
invention utilizes encryption/decryption and code recognition technology associated with 
Secure Agent, an alternative technology may be employed in support of the instant 
invention without departing from the disclosure, teachings and claims presented herein. 

BRIEF SUMMARY OF THE INVENTION 

[0012] The present invention is best viewed as comprised of two server components with 
one or more client subcomponents or sub-processes disclosed in association thereto. It 
can be fiirther conceptualized that a distinguishable client component exists for each 
emulated device type recognized by the invention's server, with an individual client 
supporting the simultaneous use of a plurality of client-side components. As used 
throughout the instant invention specification and claims, the tenn "server" is used 
synonymously with "emulated device controller", "server central processing unit", 
"server CPU", and "remotely configurable input/output device controller" and the term 
"client" is used synonyinously with "host user", "client central processing unit", "client 
CPU" and "remote user". 

[001 3] The invention's lower-most server component layer is a device driver to 
communicate directly with one or more hardware components attached to one or more 
computer systems, such as, but not limited to, mainfi-ame computers (a.k.a. host 
processors). The driver controls the hardware in a manner prescribed by its design, 
causing it to interact with the other computer systems to which it is connected as if it 
were one or more device types (emulation). The driver additionally acts as a conduit to a 
higher level server component that governs the overall behavior of the emulated devices. 



This higher level component primarily supplies the driver with new data to provide 
through the emulated devices to the other computers to which it is connected and accepts 
data arriving to the emulated devices carried up by the device driver. Both layers 
predomoninantly operate on a device by device basis. The higher level server component, 
in turn, serves as the interface between Secure Agent technology and remotely connected 
clients allowing for the encrypted transmission of all data external to the server. 

[0014] Using the example of an IBM 3215 console, a client would connect to a server 
and request a list of the 3215 devices which shared membersliip to the user's security 
groups. The user would select a device and a logical pathway from the mainframe 
computer to the client's system would become established. The client would 
communicate through the server layers with the end result of messages transported from a 
mainframe through an emulated device to the client for presentation within a window on 
a computer screen. Conversely, commands to the mainframe may be issued at the client's 
workstation and are transported through to the emulated device then through it to the 
mainframe. 

[00151 Just as a client might have the ability to administer users (i.e. add/remove), a 
client might be able to modify the presence and behavior of emulated devices, via Secure 
Agent administrative functions as taught by the afore noted pending patent applications. 
Allowable configuration ranges and values are verified and enforced according to rules 
by the server. The various data elements that may be controlled are listed at the bottom of 
this section. The server disallows modification of the active configuration (apail from 
device names and their security jgroups) and forces such modifications to be made to an 
inactive configuration. This inactive configuration may be swapped with the active 
configuration (thus activating it) upon demand. Thus, a new configuration may be 
prepared prior to a decision made to put it into effect. Additional control funcfionality 
includes but is not limited to the following: 

[00161 Recycling an adaptor that is connected to an external computer system. This is 
commonly referred to as a Power On Reset or, more simply, a PQR. 

[00171 Viewing which users are connected to which devices. 

[00181 Disconnecting a client user from a device to which he is connected. 

[00191 Activating an inactive configuration. 

[00201 Copying the active configuration to the inactive configuration in order to make 
changes based upon the active configuration. 

[00211 Purging the inactive configuration in order to start fresh. 

[00221 Consequently it is an object of the instant invention to provide for remote control, 
operation and use of a server Central Processing Unit (CPU). 



[0023] A further object of the instant invention is to provide for a secured logon sequence 
utilizing encrypted data transmission in accordance with the teachings, disclosure and 
claims of the above noted pending patent applications. 

[00241 Yet another object of the instant invention is to insure that all data transferred 
external of the emulated input/output device controller is encrypted in accordance with 
the teachings of the above noted pending patent applications. 

[00251 A further object of the instant invention is to provide the ability for an 
administrator to alter and manage the configuration of emulated mainframe peripheral 
devices. 

[0026] A further object of the instant invention is to allow the selective addition or 
restriction in the presence of devices to one or more host processors such as, but not 
limited to. mainframe computers. 

[0027] Another object of the instant invention is to provide for a configuration 
specification which provides the ability to arbitrarily name each emulated device and 
assign it to one or more security groups of which a user must be a member in order to 
access that particular device. 

r0028] An additional object of the present invention is to provide the capability by which 
an administrator may add and remove one or more users with respect to emulated 
input/output device allocation. 

[0029] Yet another object of the instant invention is to provide a facility by which an 
administrator may manage the security groups to which a user belongs, thus controlling 
the access of devices by users at any level desired down to an individual user level. 

[00301 A further object of the instant invention is to provide the ability for a user to 
access and operate an emulated input/output device. 

[00311 Yet another object of the instant invention is to provide the facility by which an 
administrator may effect/implement new device emulation types. 

[00321 Another object of the instant invention is to provide support for multiple device 
types which may be simultaneously supported and operated. 

[00331 Responsive to the foregoing challenges, the Applicant has developed an 
innovative system, method and article of manufacture to remotely configure and utilize 
an emulated device controller via an encrypted validation communication protocol. 

[00341 It is to be understood that both the foregoing general description and the following 
detailed description are exemplary and explanatory only, and are not restrictive of the 
invention as claimed. The accompanying drawings, which are incorporated herein by 
reference, and which constitute a part of this specification, illustrate certain embodiments 



of the invention and, together with the detailed description, serve to explain the principles 
of the present invention. 

[0035] In this respect, before explaining at least one embodiment of the invention in 
detail, it is to be understood that the invention is not limited in this apphcation to the 
details of construction and to the arrangement so the components set forth in the 
following description or illustrated in the drawings. The invention is capable of other 
embodiments and of being practiced and carried out in various ways. Also, it is to be 
understood that the phraseology and terminology employed herein are for the purpose of 
description and should not be regarded as limiting. As such, those skilled in the art will 
appreciate that the conception, upon which this disclosure is based, may readily be 
utilized as a basis for the designing of other structures, methods and systems for carrying 
out the several purposes of the present invention. It is important, therefore that the claims 
be regarded as including such equivalent constructions insofar as they do not depart from 
the spirit and scope of the present invention. 

[0036] Additional objects and advantages of the invention are set forth, in part, in the 
description which follows and, in part, will be apparent to one of ordinary skill in the art 
from the description and/or from the practice of the invention. 

[0037] These together with other objects of the invention, along with the various features 
of novelty which characterize the invention, are pointed out with particularity in the 
claims annexed to and forming a part of this disclosure. For a better understanding of the 
invention, its operating advantages and the specific objects connection betwe e n th e field 
e ngin ee r and th e mainfram e sit e . attained by its uses, reference would be had to the 
accompanying drawings, depictions and descriptive matter in which there is illustrated 
preferred embodiments and results of the invention. 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 illustrat e s a simplifi e d s ch e matic view of a combined r e mot e acc e ss and s e curity 
syst e m as s e t forth in th e pr e s e nt inv e ntion. 

FIG. 2 illustrat e s a sch e matic view of an alt e rnat e embodim e nt of a combin e d remote 
acc e ss and s e curity syst e m us se t forth in th e pr e s e nt inv e ntion; 

FIGS. 3A, 3B, 4, 5 A, 5B and 6 ar e flow charts illustrating th e s e qu e ntial st e ps of th e 
pres e nt inv e ntion; and 

FIGS. 7 through 13 illustrat e sub proc e ss e s of thos e in FIGS. 3 through 6. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

R e f e rring to th e drawings in d e tail, FIG. 1 illustrat e s on e pref e rred e mbodim e nt of a 
sch e matic diagram of a combin e d r e mot e acc e ss and s e curity syst e m 10 of th e pr e s e nt 
inv e ntion. 



At a mainfram e computor installation, a singl e mainfram e 12 or multipl e mainfram e s are 
locat e d at a s e cure location (illustrated by th e box 1 4 ). In many industries and busin e sses, 
larg e numb e rs of transactions ar e processed on an around the clock basis. Becaus e of this 
d e mand, multipl e mainfram e c e ntral proc e ssing units ar e utiliz e d within a secur e 
comput e r complex. Acc e ss may b e limit e d by physical m e asur e s, such as locked rooms, 
finger printing, and the lik e . 

Th e mainfram e or mainfram e s ar e conn e ct e d to a consol e monitor c e ntral proc e ssing unit 
16 which typically includ e s a k e yboard 18 and display 20. Th e consol e 16 can b e 
conn e ct e d with the mainframe or mainframes in various ways, such as, by a coax or 
twinax connections 22. 

Th e consol e 16, in th e pr e s e nt situation, may e mploy a Windows NT.TM. op e rating 
s ystem or oth e r laiown op e rating systems. Th e operating s yst e m will have an application 
program or programs which is in a client s erver format and provides consol e monitoring 
and console automation f e atur e s. Th e application program watch e s or monitors th e 
consol e for c e rtain conditions. 

The console 16 is used to display status messages about the mainfram e computer system 
and allows the op e rations staff to control the op e rations of th e mainfram e or mainfram e s. 
Typ e s of messag e s display e d may b e about e rrors or critical situation s occurring on th e 
comput e r syst e m. Exampl e s of problems not e d may b e a tap e driv e fault or a fault in a 
chip on a board. 

In today's e nviroitm e nt, a singl e consol e may b e r e sponsibl e for multipl e mainfram e 
comput e rs nmning multipl e computer operating syst e ms. 

In sp e cifi e d mainfram e syst e m al e rts, e v e nts or probl e ms, th e consol e will issu e a 
warning or al e rt. This al e rt will be communicat e d from th e consol e 16 through a mod e m 
and through a communications path, shown by arrow 30, to a dispatch control c e nt e r, 
indicat e d by box 32. In the pr ese nt e mbodim e nt, th e communications path may b e across 
th e public Int e rn e t n e t^vork. Each comput e r or machin e will hav e a distinct Int e rn e t 
protocol addr e ss. Oth e r communications paths, s uch as corporat e intran e ts or privat e 
n e tworks, or e pos s ibl e within th e t e achings of the pr e s e nt inv e ntion. 

In th e pr e sent e mbodim e nt, th e s e cur e dispatch control c e nt e r 32 is locat e d r e mot e from 
th e mainfram e sit e , although th e t e achings of th e inv e ntion apply if th e dispatch c e nt e r is 
at th e sam e location. 

Th e dispatch control c e nt e r 32 is ordinarily at a s e cur e location. Thus, acc e ss to tho 
comput e r is limited by physical m e asures such as lock e d rooms, fing e rprinting and th e 
lik e . Additionally, acc e ss to the di s patch central processing unit 3 4 may r e quire 
pa s swords prior to log on proc e dures. Typically, th e dispatch c e ntral proc e ssing unit 3 4 
includ e s a k e yboard 36 and a display 38. Th e dispatch c e ntral proc e ssing unit 3 4 will b e 
running a cli e nt sid e version of th e application program mmiing on th e console monitor 



16, as pr e viously discuss e d. 



A dispatch e r (not shown) will monitor incoming alami cod e s rec e ived from tho 
mainfram e 12. If an alert occurs, it will appear on th e display screen 38 of the dispatcher. 
Upon r e c e ipt of an alarm cod e , it will display in a list on th e display scr ee n 38. 

The dispatch e r w^ill creat e a troubl e ticket for e ach incoming alarm in th e probl e m 
tracking program. Alternatively, th e proc e dur e to creat e a problem or trouble ticket might 
b e automat e d. 

Onc e this has be e n compl e ted, a field e ngin e er or other remot e support p e rson will b e 
assigned to the probl e m and will b e called or oth e nAise contact e d. In on e such proc e dure, 
th e dispatch e r will call th e field e ngin e er or r e mot e support p e rson via t e l e phon e ov e r a 
voic e lin e . This conn e ction is s hown by arrow 4 0. Th e fi e ld e ngin ee r will b e assign e d a 
probl e m numb e r for th e incommg probl e m on th e mainfram e computer. 

Th e r e aft e r, th e dispatch control cent e r will initiate a utility softwar e program on th e 
dispatch c e ntral proc e ssing unit 3 4 w^hich will cr e at e a uniqu e , randomly g e n e rated us e r 
identification/password pair which i s ref e r e nced to th e assigned probl e m numb e r. In th e 
FIG. 1 embodiments, the us e r id e ntification/pas s word pair is a data encryption key 
randomly g e n e rat e d by the dispatch c e ntral processing unit 3 4 . 

In th e pr e s e nt cas e , th e data e ncryption k e y is g e n e rat e d from a mathematical algorithm 
and will be a randomly generat e d binary code of 128 bits. The data e ncryption k e y is also 
tim e limited so that aft e r a c e rtain p e riod of tim e , it will automatically e xpir e . For 
e xampl e , th e data e ncryption k e y may b e valid for a p e riod of 2 4 hours, aft e r wliich it is 
no long e r valid. 

Th e id e ntification/password pair is transmitt e d in two s e parat e transmissions in two 
s e parat e paths. Th e data e ncryption k e y is communicat e d and transmitt e d from tho 
dispatch c e ntral proc e ssing unit to a r e mot e support p e rson or fi e ld e ngin ee r c e ntral 
proc e ssing unit 50 as shown by arrow 52. Th e field e ngin ee r c e ntral proc e s s ing unit may 
talc e many forms, such as a laptop t e miinal, hand h e ld PC or a d e sktop comput e r. 

Th e dispatch c e ntral proc e ssing unit will also transmit th e id e ntification/pa ss word data 
e ncryption k e y back to th e consol e c e ntral proc e ssing unit 16 as shown by arrow 2 4 . Th e 
data e ncryption k e y is its e lf also e ncrypt e d. Th e data e ncryption k e y is its e lf d e crypt e d at 
th e fi e ld e ngin ee r's c e ntral proc e ssing unit and at tli e consol e . 

Onc e th e fi e ld e ngin ee r or r e mot e support p e rson has b ee n notified and has r e c e iv e d th e 
id e ntification/password pair from th e dispatch control c e nt e r, th e fi e ld e ngin ee r 50 will 
log on and communicat e with th e consol e c e ntral processing unit 16 as shown at aiTow 
5 4 . Th e fi e ld e ngin ee r will b e nmning a cli e nt sid e v e rsion of th e sam e application 
program. 



Th e communication b e tw ee n th e fi e ld e ngin e er and th e consol e may b e mad e through a 



public n e twork such as th e Iiit e met. Th e e ncrypt e d data is decrypt e d at th e consol e 
monitor. 



The fi e ld engine e r or r e mot e support p e rson will input and download th e assigned 
probl e m numb e r alr e ady r e ceiv e d from th e dispatch control c e nt e r 32. Th e fi e ld e ngin ee r 
will th e reby r e triev e th e probl e m details from th e consol e . Th e fi e ld e ngin e er will, thus, 
b e conn e cted to the mainfram e site. Importantly, th e password does not travel over the 
connection betw e en th e fi e ld engin ee r central processing unit 50 and th e mainfram e sit e 
44t 

Onc e conn e cted to the mainframe comput e r site, the field engine e r or remot e support 
person retrieves n e c e ssary infonnation through the consol e central processing unit 16 via 
the coax 22 connection to th e mainfi'am e 12. Th e fi e ld e ngin ee r, thus, has acc e ss to the 
mainfram e and will e nd e avor to solve th e probl e m pr e s e nted. 

Once the problem is resolved, th e field engineer will notify th e dispatch control center 32 
that th e probl e m has been r e solv e d as shown at arrow 26. This may b e don e in a numb e r 
of ways. This may b e done by t e l e phon e tlirough voice lin e . Alt e rnativ e ly, th e fi e ld 
engin ee r may communicat e through th e fi e ld e ngin e er's central proc e s s ing unit 50 
through a communications line back to the dispatch central processing unit. This may 
also b e perfoim e d tlirough th e Int e rn e t. 

The dispatcher close s th e probl e m in th e probl e m tracking system. Th e r e after, th e uniqu e 
identification/password pair i s invalidated so that there i s no longer access to th e 
mainfi-am e comput e r. Th e dispatch e r clos e s th e probl e m in th e dispatch c e ntral 
proc e ssing imit databas e , w^hich th e n r e mov e s th e id e ntification/password pair fi'om th e 
consol e monitor 16 at the mainfram e sit e . 

Each of th e comput e r communications may b e mad e tlirough a public net^vork such as th e 
M e m e t. Th e data conn e ction from an ims e cur e d t e miinaiyiocation i s at all tim e s s e cur e d 
by th e pr e s e nt inv e ntion. 

FIG. 2 illustrates an alt e rnat e e mbodim e nt 60 wh e r e in th e Int e rn e t protocol addr e ss ar e 
provid e d dynamically from a s e cur e nam e s e rv e r c e ntral proc e ssing unit. 

At a mainfram e comput e r installation, a singl e mainfram e 62 or multipl e mainfram e s will 
b e locat e d at a s e cur e location (illustrat e d by box 6 4 ). Th e mainfram e or mainfi-ani e s ar e 
conn e ct e d to a consol e monitor c e ntral proc e ssing unit 66 which typically includes a 
keyboard 68 and a display 70. Th e consol e 66 can b e conn e ct e d with th e mainfram e or 
mainfram e s in various ways, such as by coax or twinax conn e ctions 72. 

Al e rts, e v e nts or probl e ms will b e not e d by th e consol e which will issue a warning or 
al e rt. This al e rt will b e communicat e d from th e consol e 66 through a modem and through 
a communications path, shown by arrow 7 4 , to a dispatch control c e nt e r 76. Th e dispatch 
control c e nter includ e s a dispatch c e ntral proc e ssing unit 78 having a k e yboard 80 and a 
display 82. Th e dispatch c e ntral proc e ssing unit 78 will b e running a client sid e v e rsion of 



th e application program running on th e consol e monitor. If an al e rt occurs at th e consolo 
monitor, it will b e transmitt e d and app e ar on the scr ee n of th e dispatch c e ntral proc e ssing 
unit. Upon receipt of an alarm code, it will display in a list on th e display screen 82. Tho 
dispatcher will creat e a troubl e ticket for e ach incoming alarm in th e probl e m tracking 
program. Alternativ e ly, the proc e dur e to cr e at e a probl e m or troubl e tick e t might b e 
automat e d. 

A field engineer or other r e mot e support person will b e assigned to th e problem and will 
b e call e d by a t e l e phone or oth e rwis e contact e d which is shown by arrow 8 4 . Th e r e aft e r, 
th e dispatch control c e ntral proc e ssing unit 72 will communicate with a s e cur e name 
s e rv e r 86 or 88. Th e secure name s erv e r may be locat e d on th e pr e mis e s of th e dispatch 
control center or may b e remote ther e from. The secur e nam e serv e r will, through a utility 
softwar e program, g e n e rat e a uniqu e , randomly g e nerated us e r id e ntification/password 
pair. This will b e ref e r e nc e d to th e assigned problem numb e r. Th e us e r 
id e ntification/password pair is a data encryption k e y randomly gen e rated. The data 
encryption key is transmitted in tv r ^o separat e tran s mission s over two separate paths. Th e 
data e ncryption key is communicated and transmitt e d from th e dispatch c e ntral 
proc e ssing unit 78 to a r e mote support p e rson or fi e ld e ngin ee r c e ntral processing unit 90 
as shown by aiTOw 92. 

Th e dispatch central proc e ssing unit will also transmit th e data e ncryption key back to th e 
consol e c e ntral proc e ssing unit 68 w^hich is shown by arrow 9 4 . 

Aft e r the field e ngin e er or s upport p e rson has b e en notified and has rec e ived the 
id e ntification/password pair fi'om th e dispatch control c e nt e r, th e field e ngin e er will log 
on and communicate with the consol e proc e ssing unit 68 as showii by an'ow 96. 

Onc e th e problem has b ee n r e solv e d, th e field engine e r or support person will notify th e 
dispatch control c e nt e r that th e probl e m has b ee n resolv e d. This is illustrat e d by arrow 
98. Th e dispatch e r at th e dispatch control c e nt e r clos e s th e probl e m in th e probl e m 
tracking system. Ther e after, th e uniqu e id e ntification/password pair is invalidat e d so that 
th e r e is no long e r acc e ss to the mainfram e comput e r sit e 6 4 . The dispatch e r clos e s th e 
probl e m in th e dispatch c e ntral proc e ssing unit databas e which th e n r e mov e s th e 
id e ntification/password pair from th e consol e monitor 68 at th e mainfram e sit e . 

FIGS. 3 through 13 illustrate th e proc e ss of th e present inv e ntion that will provid e r e mot e 
access to allow s e rvicing of th e mainfram e comput e r whil e providing for s e curity and 
int e grity of the mainfram e comput e r installation. Th e proc e ss will b e d e scrib e d in relation 
to th e FIG. 2 embodim e nt witli a pair of dispatch control c e nt e rs. FIGS. 3 A and 3B 
illustrat e th e initial proc e ss at th e s e cure custom e r mainfram e site 1 4 to monitor for alerts. 
Aft e r th e proc e ss has b ee n start e d, as show^n at 100, th e consol e will b e ch e ck e d for al e rt 
situations illustrated at box 102. 

If th e r e is no unr e port e d al e rt, as at 10 4 , a ch e ck will b e mad e to s ee whether the 
r e porting int e rval has e xpir e d 106. If the r e porting p e riod has e xpir e d 106, th e n th e 
cuir e nt Int e rn e t protocol addr e ss (EP) will b e r e gist e r e d with a first secur e nam e s e r\^or, as 



s ee n at 108. If th e first secur e nam e serv e r do e s not r e gist e r th e Int e rn e t protocol addr e ss, 
th e n th e current Intern e t protocol address will b e r e gist e r e d with th e s e cond s e cur e nanio 
s e rv e r as se e n at 1 1 0. 

R e turning to box 10 4 , if th e r e is an unr e ported al e rt, an Intern e t protocol address will b e 
obtain e d for th e first dispatch control c e nter from a secur e nam e s e i-v e r c e ntral proc e ssing 
unit as shown at 112, Th e s e cur e nam e sei^v e r is a repository of custom e r sites and th e ir 
current IP addresse s . Once th e Internet protocol address has been obtained for dispatch 
cent e r 1, an al e rt will b e reported to th e first dispatch c e nt e r, as se e n at 116. 

If the r e port on th e al e rt has b ee n r e c e ived, box 118, then th e process can continue. If 
th e re i s no success, th e n, a s shown on FIG. 3B, an Intern e t protocol address will be 
obtain e d for dispatch c e nt e r 2 fi-om e ith e r secur e nam e s e rx^ e r, as shown at 120. If an 
int e rnal protocol addr e ss has b ee n obtained for th e s e cond dispatch c e nt e r as show^n at 
122, the al e rt will b e reported to the s e cond dispatch cent e r as shown at box 12 4 . If the 
alert is reported as shown at 126, the process will again continue in same manner. 

FIG. 4 illustrat e s th e proc e ss for a dispatch control c e nt e r to handl e an incoming alert 
fi-om a secur e mainframe custom e r site. Th e FIG. 4 process would clironologically follow 
th e process described in FIGS. 3 A and 3B. The dispatch control c e nter will receive an 
alert from th e mainfram e custom e r sit e 130. A problem tick e t or probl e m number will b e 
cr e at e d in a tracking system as shown at box 132. A uniqu e us e r ID/passw^ord pair for th e 
remot e support person will be g e n e rat e d, as at box 13 4 . An Int e rn e t protocol address for 
the custom e r sit e will b e obtained from a s ecure name serv^ e r, as se e n in box 136. 
Obtaining an IP addr e ss for th e custom e r sit e will b e explain e d in d e tail b e low^ 

Onc e th e Internet protocol address has b e en obtain e d for th e custom e r sit e as shown at 
1 38, a conn e ction will be mad e fi-om th e dispatch control c e nt e r to the custom e r sit e as 
shown at 1 4 0. 

The r e mot e support person's us e r ID/password pair will b e s e t up on the customer 
mainfram e sit e 1 4 2. Aft e r th e conn e ction with th e custom e r sit e has b e en disconn e ct e d 
1 44 , a r e mote support p e rson will b e s e lect e d from an availability list 1 4 6. Th e r e mot e 
support p e rson may b e contact e d in various fashions, such as by t e l e phon e , and giv e n th e 
problem numb e r 1 4 8. 

FIG. 5 illustrates th e proc e ss for th e r e mot e support p e rson or fi e ld e ngin ee r that would 
b e e mployed to handl e th e probl e m that has b ee n r e port e d. This proc e dur e would 
chronologically follow th e proc e ss shown in FIG. 4 . 

As s ee n in FIG. 5 A, onc e a probl e m has b ee n r e c e iv e d from th e dispatch control c e nt e r as 
shown at box 152, an Int e rn e t protocol address for the dispatch control c e nt e r will b e 
obtain e d from ono of th e s e cur e nam e s e iv e rs 15 4 . This process will b e e xplain e d in 
detail b e low^ 



Onc e the Int e rn e t protocol addr e ss has b e en obtained for th e dispatch control contor as 



shown at 156, a conn e ction will b e mad e to th e dispatch c e nt e r 158. Th e nam e and details 
for the s e cur e mainfram e custom e r sit e will be provided 160. Th e r e aft e r, th e r e mot e 
support person will disconn e ct from the dispatch control center 162. 

An Int e rnet protocol addr e ss will b e obtained for th e custom e r site from e ither of th e 
s e cur e nam e s e rv e r s 16 4 . Onc e th e Int e rn e t protocol addr e ss for th e mainfram e customer 
site has b e en obtained 166, th e r e mote support person will connect to the custom e r sit e 
using the Intern e t protocol as shown at 170. Th e remote s upport p e rson or fi e ld e ngineer 
will be abl e to work to solve th e particular probl e m as s ee n at box 172 and, th e r e aft e r, 
disconn e ct from th e mainfram e custom e r sit e 17 4 . 

An Int e rnet protocol addres s will be obtained for the dispatch control center from eith e r 
s e cur e nam e s e rv e r as show^n at 176. 

Onc e th e Intern e t protocol address has be e n obtained by th e support person for th e 
di s patch center 178, the remot e support person will connect to the di s patch control c e nter 
using that Int e rn e t protocol addr e ss 180 Th e support p e rson will b e abl e to r e port 
compl e tion of th e assignm e nt and closing of th e problem r e cord 182. Th e support p e rson 
will ther e aft e r disconnect from th e di s patch cent e r, as shown at 18 4 . 

FIG. 6 illustrat e s th e n e xt s e qu e ntial proc e ss in the ov e rall syst e m of th e pr e s e nt 
inv e ntion. Th e dispatch control c e nt e r will invalidat e th e r e mote support p e rson*s us e r 
ID/password at th e s e cur e mainframe customer sit e . 

The dispatch control c e nt e r will obtain an Int e rnet protocol addr e ss for th e mainfram e 
custom e r sit e from e ither secur e name s e in e r, as shown at 190. Onc e an Int e rn e t protocol 
addr e s s has b ee n obtain e d 192, a connection will b e mad e between th e dispatch control 
c e nt e r to th e consol e monitor at th e custom e r sit e using th e Int e rn e t protocol addr e s s as 
shown at 19 4 . If no Int e rn e t protocol addr e ss has b ee n obtain e d, an e rror will b e r e port e d 
a s shown at box 188. 

Th e dispatch c e nt e r's uniqu e us e r ID/password will b e provid e d to th e consol e at the 
custom e r sit e , as s ee n at box 196. A s e ssion will th e r e by b e e stablish e d to th e consolo 
monitor at th e mainfram e custom e r sit e (198). The remot e support person's usor 
ID/password on th e custom e r site consol e will be invalidat e d a s s hown at st e p 200, 
following which th e s e ssion will b e disconn e ct e d 202. 

Th e r e maining proc e ss e s illustrat e d in FIGS. 7 through 13 ar e sub proc e ss e s of the 
for e going. 

FIG. 7 illustrat e s th e proc e ss to r e gist e r a comput e r with a s e cur e nam e s e rver central 
proc e ssing unit. A targ e t s e cur e nam e serx^er will bo s e l e ct e d by its Int e rnet protocol 
addr e ss, as shown at box 210. Th e s e cur e nam e s e rv e r will b e provid e d an access usor 
ID/pa s sword pair as s ee n at box 212. A s e ssion will th e reby b e established to th e s e i-v e r 
as shown at 21 4 . If th e s e ssion has be e n e stablished 216, the Intern e t protocol addr e ss for 
th e nam e d machin e will b e r e gist e r e d 218. This proc e ss is also s ee n in FIG. 3 A at box e s 



108 and 110. 



FIG. 8 illustrat e s th e proc e ss to obtain an hiternet protocol addr e ss from a s e cure name 
sep r ^er. This proce s s is shown at box 1 12 in FIG. 3 A. As se e n in FIG. 8, a secure name 
s e r\^ e r will be s e l e ct e d by its Int e rnet protocol addr e ss, as s ee n at box 220. Th e s e cure 
nam e s e rv e r will be provided with an acc e ss us e r ID/password 222 in ord e r to e stablish a 
se ssion 22 4 . Onc e a session has be e n e stablished, as shown at 226, an Int e rn e t protocol 
addr e ss will b e r e quested for the consol e monitor 228. If the named computer has b o on 
d e fin e d 230, a ch e ck will b e made wh e th e r th e nam e d machin e has its addr e ss r e gister e d 
232, and if th e r e gistration is up to dat e 23 4 . 

FIG. 9 illustrates the process for e ither of tw^o secure name serx^ers to obtain an IP address 
initially from on e ser\^ e r and, if not succ e ssful, from a second s e rv e r. This proc e ss would 
bo utilized at 176 in FIG. 5B. 

FIG. 10 illustrates a process to obtain Internet protocol address for a mainfram e cu s tomer 
site from initially a first s e rv e r and, thereaft e r, a second s e rv e r for th e custom e r 
mainfram e sit e . 

FIG. 1 1 illustrates the subproc e ss to report an alert from the mainframe customer site to a 
dispatch c e nt e r. Tliis st e p is illustrat e d in FIG. 3 A at box 116. 

Th e subprocess to connect a r e mot e support per s on or field e ngin e er to a dispatch c e nt e r 
is illustrated in FIG. 12. 

Finally, th e subproc e ss to conn e ct to th e consol e at a mainfram e custom e r sit e using th e 
Int e met protocol addre s s i s illustrated in FIG. 13. 

Wh e reas, th e pr e s e nt inv e ntion has b ee n d e scrib e d in r e lation to th e drawings attach e d 
h e r e to, it s hould b e imd e rstood that oth e r and fijrth e r modifications, apart from those 
shown or sugg e st e d h e r e in, may b e mad e within the spirit and scop e of this 
inv e ntion. [00381 FIG. 1 is a system schematic providing a conceptual overview of 
primary hardware and software components of the instant invention as practiced in its 
prefeiTed embodiment. 

["0039] FIG. 2 is a logic flow diagram illustrating processing steps associated with the 
server initialization processing subcomponent of the instant invention when practiced in 
its preferred embodiment. 

["00401 FIG. 3 is a logic flow diagram illustrating processing steps associated with the 
server tennination processing subcomponent of the instant invention when practiced in its 
preferred embodiment. 

[0041] FIG. 4 is a logic flow diagram illustrating processing steps associated with the 
adaptor configuration load processing subcomponent of the instant invention when 
practiced in its preferred embodiment. 



[0042] FIG. 5 is a logic flow diagram illustrating processing steps associated with the 
client connection processing subcomponent of the instant invention when practiced in its 
preferred embodiment. 

[00431 FIG. 6 is a logic flow diagram illustrating processing steps associated with the 
client disconnection processing subcomponent of the instant invention when practiced in 
its preferred embodiment. 

[0044] FIG. 7 is a logic flow diagram illustrating processing steps associated with 
administrative fimctions given illustrative user response/input strings. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT 

[0045] While the making and using of various embodiments of the present invention are 
discussed in detail below, it should be appreciated that the present invention provides for 
inventive concepts capable of being embodied in a variety of specific contexts. The 
specific embodiments discussed herein are merely illustrative of specific mamiers in 
which to make and use the invention and are not to be interpreted as limiting the scope of 
the instant invention. 

[00461 Wliile the invention has been described with a certain degree of particularity, it is 
clear that many changes may be made in the details of construction and the arrangement 
of components without departing from the spirit and scope of this disclosure. It is 
understood that the invention is not limited to the embodiments set forth herein for 
purposes of exemplification, but is to be limited only by the scope of the attached claim 
or claims, including the full range of equivalency to which each element thereof is 
entitled. Turning now to FIG. 1. 

[0047] In FIG. 1, a server CPU 103 has executing under control of its control program. 
Secure Agent software 1 06. The present invention advances the art and improves upon 
technology taught and claimed in the above noted pending applications, said applications 
and teachings incorporated by reference herein. The server 103 also has operating under 
control of its control program the remote configuration software 109 of the instant 
invention. Embodied within the server 103 is a hardware adaptor card 1 12. Said adaptor 
card 1 12 is in turn communicably attached to one or more host processors ri21, 124, 127, 
128). As used herein, the term "adaptor" refers synonymously to those hardware 
configurations such as, but not limited to, "adaptor cards" which allow for comiectability 
between two or more central processing units and the transference of data associated 
therewith. Illustrative non-limiting examples of such adaptors as used herein would 
include Crossroads ESCON adaptors. Crossroads ESCQN parallel adaptors, Bus-Tech 
adaptors and IBM ESCON adaptors. 

[0048] In FIG. 1, the host processors (121, 124, 127, 128) are illustrated as Host 1 128 
executing as its control program a VM system. Host 2 121 operating under as its control 
program a CICS system. Host 3 124 operating under the controller of its control program 



an IMS system and Host 4 127 operating under the dispatching control of its control 
program (ACP) a plurality of application specific programs. In turn, each of the host 
processors 128, 12L 124 and 127 illustrated in FIG. 1, have connected to it one or more 
physical input/output devices 131. In FIG. L said input/output devices are depicted as 
tape drives 14L direct access storage device 138 and smart terminals/personal 
computer/client computing capabilities 135. Also shown in FIG. 1 is a plurality of clients 
referred to as Host users 145 which are communicably attached to the sei'x^er 103 of the 
instant invention via a communications network 148 such as, but not limited to, the 
Internet or other computer compatible network wherein computer recognized and 
generated signals may be communicated between one or more central processing units. 

[0049] Lastly shown in FIG. 1 is a Security Administrator client 151 interactively 
communicating with the Secure Agent software 106 operating within the server 103. As 
will be discussed in fiirther detail and in association with FIGS. 2 tlirough 7, the Security 
Administrator 151 utilizes Secure Agent software 106 to administer and maintain 
user/resource profiles 157 and fiirther communicates with information conveyed to said 
Secure Agent software 106 via the software processes associated v^ith the remote 
configuration software 109 of the instant invention. 

F00501 For purposes of clarity and to assist in comprehension of the instant invention, it is 
convenient to view the invention as being comprised of a number of processing . 
subcomponents. Such processing subcomponents include, but are not limited to. Server 
Initialization Ser\^er Termmation, Adaptor Configuration Load, Client Communication, 
Client Termination and Administration related subcomponents. 

[0051] The following discussion in association with FIG. 1 provides a brief non-limiting 
synopsis of the teachings of the instant invention and generally discusses the 
interrelationships of hardware and software processing components of the instant 
invention. In FIG. 1, a Security Administrator 151 defines via Secure Agent software 
106, user and resource profiles 157. Such profiles are stored in a non- volatile storage 
medium, such as but not limited to, a disk drive 158. User resource records are those 
records which typically define security group or groups, and access control variables 
associated with the user. Stated succinctly, the user resource record/profile defines those 
resources that the user may utilize and the bounds of such utilization. The Security 
Administrator 151 may also define resource profiles, such resource profiles define the 
device type and grouping of emulated input/output devices as well as central processing 
unit designations associated with each emulated device type and/or grouping. When 
attempting to establish a session between a host user 145 and any one of die operating 
systems and/or application programs operating under the dispatching control of the 
operating systems of host processors 128, 121, 124 or 127, a user via a communications 
network 148 communicates first with Secure Agent sofl^vare 106 operating within the 
server 103 of the instant invention 109. Assuming the user 145 is recognized as an 
authenticated and authorized user of the system as governed by Secure Agent software 
106, the user 1 45 next requests a device or a device grouping of emulated input/output 
devices he or she anticipates utilizing in the requested session. The Secure Agent 
software 106 verifies the user 145 as authority to allocate such emulated input/output 



devices and correspondingly associates such devices with the user and user session 
between one or more of the host processors 128. 12L 124 and 127. Once established, the 
session continues as nonnal with input/output requests of the user serviced via emulated 
input/output device as opposed to the real input/output devices 131 associated with one or 
more of the host processors. Upon completion of the session or a specific deallocation 
request initiated by the user, the client tennination subprocess of the instant invention 
deallocates the emulated input/output device or devices. As indicated, the processing 
subcomponents of the instant invention further include Adaptor Configuration Load, 
Ghent Communication, Client Termination, Administration, Server Initialization and 
Sender Termination subprocesses. It is to such subprocesses FIGS. 2 through 7 address 
themselves. A more detailed disclosure of each subprocess follows. 

[00521 FIG. 2 discloses in further detail the process steps in w^hich the server of the 
instant invention is initiaHzed. While discussion of the individual subprocesses is 
provided in an illustrative logic sequence, it is to be noted that process steps defined 
therein need not occur in a serial manner. Rather it is expressly recognized that many of 
the subprocesses execution steps may be executed in a concurrent maimer, or have their 
execution sequence factored upon the statusing of a previously executed process step. 

[00531 Sei-ver Initialization, FIG. 2 

[00541 With respect to server initialization, the driver of the instant invention first 
initializes all driver module-wide variables, such as clearing out how many adaptors are 
being supported, 201. Once these variables have been initialized, adaptors are located by 
enumerating all peripheral component interconnect computer Bus-type (PCf) devices 
present in the system using data and teclmiques published by the PCI Special Interest 
Group and by Microsoft's Window's NT Device Driver Kit (DDK). Specifically, the 
adaptor vendor and device IDs 202 are referenced to identify the presence of such 
su pported adaptors. For each adaptor located, adaptor specific variables are initiaHzed by 
the driver 203, with the resources used by the adaptor, such as buffer areas and IRQ 
(interrupt request lines) being next allocated and reserved 204 using functions provided 
by DDK. The adaptor is then reset 205 by the driver using a technique made known by 
the adaptor's manufacturer. Since these adaptors are generally intelligent it is necessary to 
transfer (download) to them microcode (a manufacturer-supplied program specific to 
such a device) that controls internal instruction sequencing. Therefore, microcode is 
downloaded into the adaptor 206 in a manner prescribed by the adaptor manufacturer 
with the adaptor then considered initialized 207. The driver next requests a connection to 
each unique IRQ so that any interrupts generated by any of the recognized adaptors may 
be serviced by the driver 208 and next initiates timer support 209 so that approximately 
once every second, general operations may be perfonned on behalf of each adaptor. This 
support typically, though not limitedly, includes ensuring an adaptor does not generate a 
non-detected inteiTupt. Having once initiated its timer 209, the driver next exposes 
standard module-wide support to all applications 210, which allows for communications 
with the driver as to be established by the Host DLL. 

[0055] Subsequent to the driver initialization, the Host DLL initializes variables it utilizes 



211 and clears a user connection block to allow infomiation for each user to be 
represented 212. The Host DLL further exposes and makes available to Secure Agent a 
block of data, representing an emulated device specific administrative instruction set 213. 
for each user. In addition to such normal data elements as a user ID and password, this 
instruction set advises Secure Agent to maintain device type and security group strings on 
behalf of each user specifically for the support of this Host DLL, The device types hmits 
those types of emulated devices to which a user might claim access whereas the device 
security groups name the emulated device security groups to which a user is subscribed. 
In addition, at this stage linkage to configuration support routines within the Host DLL is 
also established. As practiced in one embodiment of the invention, the root name of the 
administrative tree structure is exposed to Secure Agent indicating that the Host DLL 
supports the configuration of infonnation and will respond in a positive manner to 
requests for information and management of branches under this particular root. The Host 
DLL next creates a mutex serialization mechanism to be used by configuration support 
routines during access of adaptor configuration data to insure data integrity 214. This 
serialization mechanism is used to prevent for example potential simultaneous updates by 
multiple administrators as well as to prevent a client from enumerating emulated devices 
while it is being manipulated. 

[00561 The Host DLL continues to open or otherwise establishes communication with the 
driver 215 and requests ft'om it a number of recognized adaptors 216 to which the driver 
responds 217, whereupon the Host DLL requests fi:-om the driver its version number 218 
to which the driver also responds 219. The Host DLL then records into a Secure Agent 
log the driver version and the number of adaptors it controls 220, and proceeds to indicate 
that each adaptor is not yet in a condition to support client connectivity 221 . Data 
representing the adaptor configuration to be utilized (the active configuration) is next 
loaded 223. This data specifies device types and number of devices to be emulated, in 
conjunction with user- friendly (readable) names and security groups for each such 
emulated device. A second unique set of this data is loaded (the inactive configuration) 
224 on behalf of this same adaptor to be used as a work area for administrators. This 
allows administrators to accumulate a series of configuration changes prior to effecting 
the activation of those changes as a whole. During said initialization, the Host DLL lastly 
ensures that the loaded adaptor configurations are within operationally permissible 
parameters 225. 

[00571 FIG. 3 is a logic flow diagram illustrating processing steps associated with the 
server termination processing subcomponents of the instant invention as practiced in its 
prefen'ed embodiment. Turning now to FIG. 3. 

[0058] In FIG. 3 with respect to server termination, the Host DLL first disconnects each 
currently connected user 301. Such disconnection is facilitated via processing 
accommodated in the Client Disconnection Processing subcomponent as will be 
discussed in association with FIG. 6. Recognized adaptors are then set offline to their 
channels through the Adaptor Configuration Load processing subcomponent 302. The 
Host DLL next ceases communication, or closes the driver 303, and frees all allocated 
storage and resources 304. The one second timer is then closed by the driver 305 and 



module-wide exposure of support to application through NT is eliminated 306. The driver 
then ensures/verifies each adaptor is offline to the chaimel and the adaptor is reset 307. 
disconnects all previously connected IRQ's 308, and destroys each object instance 309, 
Such destruction further includes but is not limited to ehmination of exposure of the 
emulated devices support to applications tlirough NT 310 and the freeing of all allocated 
storage and resources 311. 

[00591 FIG. 4 is a logic flow diagram illustrating the processing steps associated with the 
Adaptor Configuration Load processing subcomponent of the instant invention as 
practiced in its preferred embodiment. 

[00601 In FIG. 4 the Host DLL first indicates the adaptor's imavailability 401 and for 
each client cunently coimected to a logical unit on tliis adaptor, issues a message to the 
client indicating that the client is being disconnected due to administrative device 
management 402. The Host DLL then performs the client discomiection services in 
association with the invention's Client disconnection subprocess as will be discussed in 
further detail in association with FIG. 6. The Host DLL continues by next recording into 
Secure Agent log the configuration for this adaptor is being loaded 403 and if the adaptor 
is to be forced offline to the mainframe to which it is connected 404, prepare and uses an 
empty configuration indicating that Emulated devices are not to be emulated during this 
session. If the adaptor is not to be forced offline, an active configuration for the adaptor is 
provided and a request that the adaptor using the active configuration data is initiated 
405. The driver as instructed causes the adaptor to be offline to the channel at this stage 
in the adaptor configuration load 406, destroys each of the adaptor emulated devices 
driver object instances 407 causing or eliminating the exposure of emulated devices 
support to applications through NT 408 and frees all allocated storage and resources 409. 
The driver next determines if Emulated devices are to be emulated 410 and then request 
that the adaptor be brought online to the channel 41 1 , lastly indicating that the adaptor is 
available for client use 412. 

[00611 FIG. 5 is a logic flow diagram illustrating the processing steps associated with the 
Client Connection processing subcomponent of the instant invention as practiced in its 
preferred embodiment. 

[00621 Client Connection, FIG. 5 

[00631 1^"^ FIG. 5, a client connection first initializes variables that it utilizes 501 then 
employs Secure Agent client code in order to establish a comiecfion to the Host DLL 502, 
whereupon the Host DLL retains the client's name 503 and loads the client's device type 
and security groups 504. A new client object instance is then created to represent this new 
client connection with the variables it will use becoming initiahzed 505. The Host DLL 
then stores the location of the client obiect in a user connection block 506. At this point 
the client sends to the Host DLL the command version level that represents the client 
feature set as a means to facilitate backward compatibility by fijture Host DLLs 507 
which the Host DLL stores for possible reference 508. By knowing the version of the 
client, the Host DLL can and will prevent communicating with older clients in a maimer 



supported only by newer clients, whereas newer clients will be able to take advantage of 
a fuller set of features that the Host DLL offers. The client next provides to the Host DLL 
the emulated device type in which it is interested 509 whereupon the Host DLL stores it 
for later reference 510. The client then requests of the Host DLL its command version 
level 511 that the client stores for possible reference 513. Just as with the Host DLL 
being able to restrict its behavior for older clients, since the client knows the version level 
of the Host DLL it can restrict itself from attempting to take advantage of features 
available only on newer ser\^ers whereas newer servers might be more fully exploited. 
The client then requests from the Host DLL a list of the cuiTently available emulated 
devices to which the client may connect 514. The Host DLL returns the response back 
515 whereupon the client selects one of the emulated devices and requests that the Host 
DLL establish a connection to it on its behalf 516. 

[00641 FIG. 6 is a logic flow diagram illustrating the processing steps associated with 
Client Disconnection processing subcomponent of the instant invention as practiced in its 
preferred embodiment. 

[00651 As can be seen in FIG. 6, the Host DLL destroys the client object instance which 
requires the following activity. If connected to a logical unit, the logical unit is closed 
601 and the threads that were created to perfoi-m input/output device of the logical unit, if 
any, are terminated 602. If connected to a logical unit, the logical unit-in-use flag is set to 
not in use 603 and if connected to a logical unit, the logical unit client value is set to none 
604. The Host DLL lastly frees all allocated storage and resources for the client object 
605. 



[0066] Administrative Configuration 

[00671 When an administrator desires to modify the configuration of adaptors managed 
by the Host DLL it issues requests for enumeration of the "/Adaptors" root and its 
branches to which the Host DLL will respond. This provides the administrator with the 
means necessary to discover what information exists to be changed. The data exposed 
through these branches correlates to the data within the active and inactive configurations 
for each adaptor. 

[0068] Once supplied with the name and value of a piece of adaptor configuration data an 
administrator can decide whether or not to make changes to it and, if so, supply that name 
with a new value back to the Host DLL which will then make that change on the 
administrator's behalf. 

[00691 Additionally, an administrator may enumerate a series of controls that can be 
employed for special actions by the Host DLL against an adaptor. Specifically, an 
administrator might decide to activate the inactive configuration, whereupon the Host 
DLL will exchange the data of the active configuration with that of the inactive 
configuration then perform the actions detailed with Adaptor Configuration Load, FIG. 4. 
If, on the other hand, an administrator opted to copy the contents of the active 
configuration into that of the inactive configuration then the Host DLL would perform 



that action. An administrator also has the option to simply clear out the inactive 
configuration whereupon the Host DLL would reinitialize it to reflect the absence of 
configured emulated devices. If an administrator decided it was necessary to reinitialize 
the adaptor then he could specify that the Host DLL do so whereupon it would perform 
the actions detailed with Adaptor Configuration Load, FIG. 4. Finally, if an admmistrator 
decided that an adaptor should either be kept offline or could come back online then he 
could request that of the Host DLL and it would toggle that state for the adaptor then 
perform the actions detailed with Adaptor Configuration Load. FIG. 4. 

[0070] Non-limiting examples of dialog and processing as provided for in the invention's 
administrative configuration subcomponent follow immediately for purposes of 
facilitating full and enabling disclosure. 

[00711 Comiected Client Traffic from Logical Unit: Mainframe Message (3215 Example) 

[0072] When the adaptor interrupts with a message fi'om the mainframe then that 
message is first caught by the driver emulated devices object and carried up into the Host 
DLL by a thread created on behalf of the client that perfonns I/O against the Logical unit. 
This message is then transmitted through S A to the client. 

[0073] Connected Client Traffic fi^om Logical Unit: Online or Offline Event (3215 
Example) 

[00741 When the adaptor is found to go online or offline to the channel then that event is 
first caught by the driver emulated devices object and carried up into the Host DLL by a 
thread created on behalf of the client that perfonns I/O against the Logical imit. This 
event is then transmitted through SA to the client. 

[0075] Connected Client Traffic fi-om Client: Mainframe Command (3215 Example) 

[0076] The client may send a mainframe command to the Host DLL which is 
immediately transported to the driver emulated devices object by a thread created on 
behalf of the client that performs I/O against the Logical unit. The driver emulated 
devices object then requests that the adaptor send the command to the mainframe. 

[00771 FIG. 7 is a logic flow diagram illustrating processing steps associated with 
administrative functions given non-limiting examples of user input command strings. 
Turning now to FIG. 7. 

[00781 Administration of Adaptor Configuration Data: Input Request=Enumerate Branch 
/Adaptors 

[0079] Administrator requests an enumeration of "/ESCON Adaptors" 701. 

[00801 Host DLL builds and returns a string consisting of a concatenation of all the 
adaptors, in the form of Adaptor # where # is die 1 -based number of the adaptor, along 



with a flag for each indicating that each element has, in tuni, more branches 702. 

[00811 Administration of Adaptor Configuration Data: Input Request=Enumerate Branch 
/Adaptors/Adaptor # 

[00821 Administrator requests an enumeration of, for example. "/Adaptors/Adaptor 1" 
703. 



[00831 Host DLL builds and returns a string consisting of a concatenation of "Active 
Configuration" and "Inactive Configuration", each with a flag for each indicating that 
they have, in turn, more branches, along with a string of "Configuration Control" with a 
flag indicating that it has values 702. 

[00841 Administration of Adaptor Configuration Data: Input Request=Enumerate Branch 
/Adaptors/Adaptor #/(In) Active Configuration 

[00851 Administrator requests an enumeration of, for example, "/Adaptors/Adaptor 
1/Active Configuration" 704. 

[00861 Host DLL builds and returns a string consisting of a concatenation of 16 CUs, in 
the fonn of Control Unit x## where ## is hexadecimal from 00 through OF, along with a 
flag for each indicating that each element has, in turn, more branches 702. 

[00871 Administration of Adaptor Configuration Data: Input Request=Enumerate Branch 
/Adaptors/ Adaptor #/(In) Active Configuration/Control Unit x## 

[00881 Administrator requests an enumeration of, for example, "/Adaptors/ Adaptor 
1 /Active Configuration/Control UnitxOO" 705. 

[00891 Host DLL builds and returns a string consisting of a concatenation of 
"Assignments" and "Logical Units", each with a flag indicating that they have values 702. 

[00901 Administration of Adaptor Configuration Data: Input Request=Enumerate Branch 
/Adaptors/ Adaptor #/(In)Active Configuration/Control Unit x##/Assignments 

[0091] Administrator requests an enumeration of, for example, "/Adaptors/Adaptor 
1/Inactive Configuration/Control Unit xOO/Assignments" 706. 

[00921 Host DLL builds and retums a stri ng consisting of a concatenation of the 
following: 702 

[0093] A. "Controller Type" with a flag indicating the data presentation to be a drop- 
down box. 



[00941 This includes a list of all of the valid CUTypes (i.e. 7412, 3174) along with the 
currently assigned value. Tliis value is taken fi'om the specified Adaptor configuration 



data for this adaptor, indexed to the specified control unit, 

[00951 "Base Address" with a flag indicating the data presentation to be a text box. 
This includes the currently assigned value. This value is taken from the specified Adaptor 
configuration data for this adaptor, indexed to the specified control unit, 

[0096] C. "Device Count" with a flag indicating the data presentation to be a text box. 
This includes the cuiTently assigned value. This value is taken from the specified Adaptor 
configuration data for this adaptor, indexed to the specified control unit. 

[0097] D, If the specified Adaptor configuration is the active configuration then a flag is 
added to all fields marking them as non-modifiable meaning that this data cannot be 
changed. For these particular datas only that w^ithin the inactive configuration may be 
worked upon. 

[00981 Administration of Adaptor Configuration Data: Input Request==Enumerate Branch 
/Adaptors/Adaptor #/(In)Active Configuration/Control Unit x##/Logical Units 

[00991 Administrator requests an enumeration of for example, "/Adaptors/ Adaptor 
1/Inactive Configuration/Control Unit xOO/Logical Units" 707. 

[0100] Host DLL builds and returns a string consisting of a concatenation of the 
following: 702 

[01011 A. FQ'' ^^^h emulated devices per Logical Unit Count for the specified Adaptor 
configuration data for this adaptor, indexed to the specified control unit (the foUow^ing 
uses of ## is the current Logical Unit Count entry+the Logical Unit Base, providing the 
emulated devices address as it appears to the mainframe.): 

[01021 I. "Device x## Name(s)" with a flag indicating this is a text box. This includes the 
currently assigned value per the specified Adaptor configuration data for this adaptor, 
indexed to the specified CU and emulated devices per the current Logical Unit Count 
entry. 

[01031 2. "Device x## GroupCs)" with a flag indicating this is a text box. This includes 
the currently assigned value per the specified Adaptor configuration data for this adaptor, 
indexed to the specified CU and emulated devices per the current Logical Unit Count 
entry. 

[0104] 3. If the specified Adaptor configuration is the active configuration: 

[0105] a. "Device x## Status" with a flag indicating this is a text box. This includes either 
the currenfly assigned emulated devices Client value (client userid) if the emulated 
devices In-Use flag indicates "in use", otherwise "this device is not in use". The emulated 
devices values involved are per the specified Adaptor configuration data for this adaptor, 
indexed to the specified CU and emulated devices per the current Logical Unit Count 



entry. This field is marked as non-modifiable meaning that this data cannot be changed 
(informational only) 

[0106] Administration of Adaptor Configuration Data: Input Reqiiest=Enumerate Branch 
/Adaptors/ Adaptor #/Configuration Control 

[0107] Administrator requests an enumeration of for example. "/Adaptors/ Adapt or 
1/Configuration Control" 708. 

[0108] Host DLL builds and returns a string consisting of a concatenation of the 
following: 702 

[0109] A. "Check this then click save to activate the inactive config" with a flag 
indicating this is a check box and a value of unchecked. 

[0110] B. "Check this then click save to copy the inactive config to the inactive" with a 
flag indicating this is a check box and a value of unchecked. 

[01 1 n C. "Check then then chck save to purge the inactive config" with a flag indicating 
this is a check box and a value of unchecked. 

[01 12] D. "Check this then click save to POR the adaptor" with a flag indicating this is a 
check box and a value of unchecked. 

[0113] E. "Force adaptor offline" with a flag indicating tliis is a check box. This includes 
the cuiTently assigned value per the specified Adaptor configuration data for tliis adaptor. 

[01 14] Continuing with non-illustrated, non-limiting examples of Administrative 
processing functionality: 

[01 15] Administration of Adaptor Configuration Data: Data Assignment of a 
/Adaptors/Adaptor #/nn)Active Configuration/Control Unit x##/Logical Units value: 

[0116] Administrator 

[0117] 1 . Requests an assignment of any modifiable value under "/Adaptors/Adaptor 
#/(In)Active Configuration/Control Unit x##/Logical Units" providing the new value 
along with the path to the data name. 

[01181 Host DLL 

[01 1 9] 2. Assigns the specified data of the adaptor, indexed to the specified CU and 
Logical Unit, to the provided value. 

[0120] 3. Saves the data to non- volatile storage through SA. 



[01211 4. If the change was to an emulated devices Name then, if that emulated devices is 
cunentlv in use by a user per the emulated devices In-Use flag, use the emulated devices 
Client value to locate the client object then issue that client a message indicating the new 
emulated devices name, 

[01221 5. If the change was to an emulated devices Groups then, if that emulated devices 
is currently in use by a user per the emulated devices In-Use flag, use the emulated 
devices Client value to locate the client object and revalidate the client's authority exactly 
as is in accordance with Client Connection discussion. If the chent no longer has the 
authority to access the device then send him a message to that effect and perform Client 
Disconnection processing. 

[01231 Administration of Adaptor Configuration Data: Data Assignment of a 
/Adaptors/Adaptor #/(In)Active Configuration/Control Unit x##/Assigmnents value: 

[01241 1. Administrator requests an assignment of any modifiable value under 
"/Adaptors/ Adaptor #/rin)Active Configuration/Control Unit x##/Assigmnents". 
providing the new value along with the path to the data name. 

[01251 Host DLL 

[01261 2. Ensures that every Logical Unit Base and Logical Unit Count is within the 
ranges established (and published) as acceptable to the adaptors and IBM mainframe 
computers. If not then reject the change 

[01271 3. Assigns the specified data of the adaptor, indexed to the specified CU. to the 
provided value. 

[01281 4. Saves the data to non-volatile storage through SA. 

[01291 Administration of Adaptor Confi guration Data: Admin checked 
/Adaptors/Adaptor #/Configu ration Control/Check this then click save to activate the 
inactive config 

[01301 1. Administrator requests to activate the inactive configuration of the specified 
adaptor. 

[01311 Host DLL 

[01321 2. Uses the configuration datas for the specified adaptor. 

[01331 3^ Indicates that the adaptor is unavailable for use by clients. 

[01341 4. For each client currently connected to an emulated devices on this adaptor: 

[01351 A. Issue a message to the client indicating that they are being disconnected due to 



admiiiistrator device management. 
r01361 B. Perform Client Disconnection. 

[0137] 5. Exchanges the contents of the active configuration with that of the inactive 
configuration. 

[0138] 6. Saves the configurations to non-volatile storage through SA. 

[0139] 7. Performs Adaptor Configuration Load. 

[0140] Administration of Adaptor Configuration Data: Admin checked 
/Adaptors/ Adaptor #/Configuration Control/Check this then click save to copy the 
inactive config to the inactive 

[0141] L Administrator requests to copy the active configuration to the inactive 
configuration of the specified adaptor. 

[0142] Host DLL 

[0143] 2. Uses the configuration datas for the specified adaptor. 

[0144] 3. Copies the contents of the active configuration into the inactive configuration. 

[0145] 4. Saves the inactive configuration to non-volatile storage through SA. 

[0146] Administration of Adaptor Configuration Data: Admin checked 
/Adaptors/ Adaptor #/Configuration Control/Check then then click save to purge the 
inactive config 

[0147] 1 , Administrator requests to purge the inactive configuration of the specified 
adaptor. 

[01481 Host DLL 

[0149] 2. Uses the inacfive configuration data for the specified adaptor. 

[01501 3. Clear it out to default values as does Start Server when a configuration doesn't 
exist. In summary, all of the CUTypes are assigned to 7412 and everything else is 
assigned to 0. 

[0151] 4. Saves the inactive configuration to non-volatile storage through SA. 

[0152] Administration of Adaptor Confi guration Data: Admin checked 
/Adaptors/ Adaptor #/Configuration Control/Check this then click save to POR tlie 
adaptor 
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[0153] Administrator requests to perfomi a Power On Reset (POR, or an offline/online 
recycle) of the specified adaptor. 

[0154] Host DLL performs Adaptor Configuration Load for the specified adaptor. 

[0155] Administration of Adaptor Configuration Data: Admin checked 
/Adaptors/ Adaptor #/Confi juration Control/Force adaptor offline 

[0156] Administrator 

[0157] L Requests a change to the flag that controls whether or not the adaptor is to be 
forced offline to the mainframe to which it is connected. 

[0158] Host DLL 

[0159] 2. Assigns the supplied setting to the data for the specified adaptor. 
[0160] 3. Saves the value to non-volatile stored through SA. 
[0161] 4. Performs Adaptor Configuration Load. 

[0162] While this invention has been described to illustrative embodiments, this 
description is not to be construed in a limiting sense. Various modifications and 
combinations of the illustrative embodiments as well as other embodiments will be 
apparent to those skilled in the art upon referencing this disclosure. It is therefore 
intended that this disclosure encompass any such modifications or embodiments. 

[0163] It will be apparent to those skilled in the art that various modifications and 
variations can be made in the construction, configuration, and/or operation of the present 
invention without departing fi-om the scope or spirit of the invention. For example, in the 
embodiments mentioned above, variations in the materials used to make each element of 
the invention may vary without departing from the scope of the invention. Thus, it is 
intended that the present invention cover the modifications and variations of the invention 
provided they come within the scope of the appended claims and their equivalents. 



